Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/6FEF4E442DE011EA853E2328C4F9AE02.roa
File: 6FEF4E442DE011EA853E2328C4F9AE02.roa (raw, json)
Hash identifier: fvGOEcDamDrvii5lTVdwqyxJJEnDbSq0cSF/6Idf/Qk=
Subject key identifier: 89:97:BF:E3:5E:36:50:10:FC:89:2A:DF:2E:E9:F7:C9:49:71:57:30
Certificate issuer: /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957
Certificate serial: 2A6F
Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/6FEF4E442DE011EA853E2328C4F9AE02.roa
Signing time: Fri 24 Jan 2025 16:02:11 +0000
ROA not before: Fri 24 Jan 2025 16:02:11 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 24203
IP address blocks: 140.213.3.0/24 maxlen: 24
140.213.4.0/24 maxlen: 24
140.213.5.0/24 maxlen: 24
140.213.6.0/24 maxlen: 24
140.213.7.0/24 maxlen: 24
140.213.9.0/24 maxlen: 24
140.213.10.0/24 maxlen: 24
140.213.12.0/24 maxlen: 24
140.213.14.0/24 maxlen: 24
140.213.16.0/24 maxlen: 24
140.213.19.0/24 maxlen: 24
140.213.20.0/24 maxlen: 24
140.213.23.0/24 maxlen: 24
140.213.29.0/24 maxlen: 24
140.213.32.0/24 maxlen: 24
140.213.33.0/24 maxlen: 24
140.213.35.0/24 maxlen: 24
140.213.36.0/24 maxlen: 24
140.213.38.0/24 maxlen: 24
140.213.39.0/24 maxlen: 24
140.213.42.0/24 maxlen: 24
140.213.47.0/24 maxlen: 24
140.213.50.0/24 maxlen: 24
140.213.51.0/24 maxlen: 24
140.213.53.0/24 maxlen: 24
140.213.56.0/24 maxlen: 24
140.213.58.0/24 maxlen: 24
140.213.62.0/24 maxlen: 24
140.213.72.0/24 maxlen: 24
140.213.75.0/24 maxlen: 24
140.213.88.0/24 maxlen: 24
140.213.114.0/24 maxlen: 24
140.213.138.0/24 maxlen: 24
140.213.139.0/24 maxlen: 24
140.213.142.0/24 maxlen: 24
140.213.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10863 (0x2a6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9186214
Validity
Not Before: Jan 24 16:02:11 2025 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=6793b983-b41c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d3:0a:ca:4d:77:5e:97:54:02:01:6d:8f:1c:
8a:50:4e:5b:09:74:d1:e2:81:42:c2:b4:ea:4f:34:
b7:a8:5e:6d:1c:b6:cd:42:e9:30:1e:3d:e4:6a:25:
df:5c:20:3e:44:aa:aa:9a:f4:3e:d2:39:35:bb:21:
21:78:c2:ec:6b:de:9f:a7:87:73:77:eb:05:4e:8d:
4b:a2:5f:38:b9:f2:70:a0:d0:e1:e1:3e:22:bc:13:
ad:35:9e:ba:16:80:6c:59:68:0a:ea:73:d2:4c:0d:
36:6d:ba:68:ab:9d:1c:54:b5:40:82:17:12:6d:b6:
aa:38:3c:8e:d3:e5:b3:9b:9b:57:d7:8e:2d:70:ce:
58:7e:fc:b3:84:b9:1a:0c:34:ed:ff:aa:66:93:76:
c2:42:21:2f:b0:6f:f9:bd:62:bf:3c:b5:fa:b8:d4:
8f:e9:9b:5d:4d:cc:d3:1f:19:fc:10:b5:c9:b8:e8:
90:87:da:b6:8a:4b:83:e7:a9:f0:64:8f:26:ae:18:
b0:75:0b:45:69:e9:3e:e4:4f:a6:83:d3:15:b1:ca:
87:ca:19:8a:82:b0:02:3b:11:81:b1:02:b6:6a:48:
20:8a:2f:72:80:46:33:5a:d4:4d:25:c3:52:09:eb:
c4:e2:82:e0:34:e9:6f:f1:5e:20:2e:9d:3e:9d:7d:
7b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:97:BF:E3:5E:36:50:10:FC:89:2A:DF:2E:E9:F7:C9:49:71:57:30
X509v3 Authority Key Identifier:
keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/6FEF4E442DE011EA853E2328C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
140.213.3.0-140.213.7.255
140.213.9.0-140.213.10.255
140.213.12.0/24
140.213.14.0/24
140.213.16.0/24
140.213.19.0-140.213.20.255
140.213.23.0/24
140.213.29.0/24
140.213.32.0/23
140.213.35.0-140.213.36.255
140.213.38.0/23
140.213.42.0/24
140.213.47.0/24
140.213.50.0/23
140.213.53.0/24
140.213.56.0/24
140.213.58.0/24
140.213.62.0/24
140.213.72.0/24
140.213.75.0/24
140.213.88.0/24
140.213.114.0/24
140.213.138.0/23
140.213.142.0/23
Signature Algorithm: sha256WithRSAEncryption
18:09:01:6a:9e:3b:33:53:c6:ed:5f:20:0b:98:a7:34:ed:55:
56:94:b4:bd:11:ec:0e:47:c4:0a:d4:51:4a:32:37:bd:2b:95:
fe:7b:24:d7:53:f6:86:e9:cd:10:65:67:bd:72:94:62:94:74:
a2:56:06:43:f0:10:e0:bb:03:c1:4f:7c:df:a0:6a:65:16:89:
96:a7:fd:65:d7:e5:0f:a6:c0:1e:b8:eb:14:4e:d2:72:50:eb:
60:c8:f6:12:83:10:97:2e:79:18:af:55:65:58:6e:f9:e4:b5:
9b:d7:6f:91:d5:b5:42:a7:ba:84:96:63:3f:63:5e:05:8d:cc:
dc:97:3a:78:0d:8a:fc:0d:46:ae:2a:2e:d5:41:d8:c2:10:d0:
f2:ab:66:a4:0e:be:5a:3f:71:1b:29:4f:67:62:bc:d8:2f:90:
f6:13:59:ce:a2:a3:27:d0:31:d6:22:35:58:27:f7:6d:4b:54:
0b:ec:e9:a7:7f:d2:04:b0:60:7f:c5:b3:bb:a0:e9:41:89:cc:
9d:7a:df:2b:0b:b0:f3:dc:c2:81:65:58:37:37:a4:1f:a5:ec:
a1:dc:9e:54:03:16:f5:8e:f0:23:a0:41:99:14:cc:44:06:39:
ad:88:1b:ed:fe:8c:04:a6:00:b9:d5:3d:f8:9d:49:85:81:98:
c0:38:d0:52
-----BEGIN CERTIFICATE-----
MIIGIDCCBQigAwIBAgICKm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
ODYyMTQxMTAvBgNVBAUTKDNGQjE4RDg5RkFGMzE4OERDRTU5MEY3QzQ4OTA3Nzk2
MUY4MkE5NTcwHhcNMjUwMTI0MTYwMjExWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzkzYjk4My1iNDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA29MKyk13XpdUAgFtjxyKUE5bCXTR4oFCwrTqTzS3qF5tHLbNQukwHj3kaiXf
XCA+RKqqmvQ+0jk1uyEheMLsa96fp4dzd+sFTo1Lol84ufJwoNDh4T4ivBOtNZ66
FoBsWWgK6nPSTA02bbpoq50cVLVAghcSbbaqODyO0+Wzm5tX144tcM5YfvyzhLka
DDTt/6pmk3bCQiEvsG/5vWK/PLX6uNSP6ZtdTczTHxn8ELXJuOiQh9q2ikuD56nw
ZI8mrhiwdQtFaek+5E+mg9MVscqHyhmKgrACOxGBsQK2akggii9ygEYzWtRNJcNS
CevE4oLgNOlv8V4gLp0+nX17BwIDAQABo4IDRDCCA0AwHQYDVR0OBBYEFImXv+Ne
NlAQ/Ikq3y7p98lJcVcwMB8GA1UdIwQYMBaAFD+xjYn68xiNzlkPfEiQd5YfgqlX
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9CN0Y4MTk1ODMz
MUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJM09XUTk4U0pCM2xoLUNx
VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL1A3R05pZnJ6R0kzT1dROThTSkIzbGgtQ3FWYy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
ODYyMTQvQjdGODE5NTgzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvNkZFRjRFNDQy
REUwMTFFQTg1M0UyMzI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgc0GCCsGAQUFBwEHAQH/
BIG9MIG6MIG3BAIAATCBsDAMAwQAjNUDAwQDjNUAMAwDBACM1QkDBACM1QoDBACM
1QwDBACM1Q4DBACM1RAwDAMEAIzVEwMEAIzVFAMEAIzVFwMEAIzVHQMEAYzVIDAM
AwQAjNUjAwQAjNUkAwQBjNUmAwQAjNUqAwQAjNUvAwQBjNUyAwQAjNU1AwQAjNU4
AwQAjNU6AwQAjNU+AwQAjNVIAwQAjNVLAwQAjNVYAwQAjNVyAwQBjNWKAwQBjNWO
MA0GCSqGSIb3DQEBCwUAA4IBAQAYCQFqnjszU8btXyALmKc07VVWlLS9EewOR8QK
1FFKMje9K5X+eyTXU/aG6c0QZWe9cpRilHSiVgZD8BDguwPBT3zfoGplFomWp/1l
1+UPpsAeuOsUTtJyUOtgyPYSgxCXLnkYr1VlWG755LWb12+R1bVCp7qElmM/Y14F
jczclzp4DYr8DUauKi7VQdjCENDyq2akDr5aP3EbKU9nYrzYL5D2E1nOoqMn0DHW
IjVYJ/dtS1QL7Omnf9IEsGB/xbO7oOlBicydet8rC7Dz3MKBZVg3N6Qfpeyh3J5U
Axb1jvAjoEGZFMxEBjmtiBvt/owEpgC51T34nUmFgZjAONBS
-----END CERTIFICATE-----
Generated at Sat Apr 12 01:28:47 2025 by rpki-client